As I am sitting here thinking about Windows Patching, it strikes me that there are some real parallel threads among patching and Antivirus.
They both seem to be a necessary evil. AntiVirus software is notorious for wrecking applications. Support always has a sneaky suspicion that your Antivirus program is actively working against your business applications but you are obligated to run it. On the flip side, patching applications might just break them. It's a gamble. Fix one thing, break two more. You just can't be sure without properly testing.
Antivirus programs are mini patch managers. There probably is no better example of a program that needs almost constant updating and patching than an Antivirus program. Those definition files come out at a furious pace sometimes. Centralized patching and Antivirus definitions are critical to not bringing your network to a crawl during peak times.
Both Antivirus and Patching strategies have a security angle. They actually work hand in hand. One knocking down threats that probe and attack and the other closing holes and reducing attack surfaces for threats that are already there.
With all these similar and synergistic qualities, do you see Antivirus components and patch management a part of an overarching security strategy or separate and distinct solutions? With separate and distinct ownership and roles in the environment?
Originally published on http://thwack.solarwinds.com/thread/53912 – Please direct any comments there.